IT Cybersecurity Project Mitarbeiter

The IT & cybersecurity project employee is a multifaceted role responsible for coordinating IT projects, ensuring robust cybersecurity practices, and preparing for various IT audits. This position involves collaborating with cross-functional teams, analyzing risks, and implementing effective security measures. You will work closely with IT, Compliance and Business units to improve our overall security posture while driving successful IT initiatives.

IT Project Coordination

1. Lead and coordinate IT projects across departments
2. Define project scope, objectives, and deliverables
3. Ensure projects adhere to secure system standards

Cybersecurity Strategy and Implementation

1. Develop and execute cybersecurity strategies aligned with organizational goals also in collaboration/coordination with external cybersecurity specialists
2. Implement security controls, policies, and best practices
3. Collaborate with IT teams to ensure secure system configurations
4. Collaborate with legal and compliance teams to align policies with legal requirements

Risk Assessment and Mitigation

1. Evaluate existing systems, processes, and technologies to identify potential cybersecurity risks
2. Develop risk assessment frameworks and conduct regular risk assessments
3. Propose mitigation strategies and work with relevant teams to implement them

Security Audits and Compliance

1. Prepare for various IT audits (e.g. financial audits, compliance audits)
2. Gather necessary documentation and evidence for audit purposes
3. Address audit findings and implement corrective actions

Incident Response and Threat Management

1. Develop incident response plans and procedures
2. Coordinate incident response efforts during security breaches or cyber incidents, also together with external specialists
3. Investigate security incidents, analyze root causes, and recommend corrective actions

Security Architecture and Solutions

1. Work with IT teams to design secure network architectures
2. Evaluate and recommend security solutions (e.g., firewalls, intrusion detection systems)
3. Implement and configure security tools to protect against threats

Security Awareness and Training

1. Conduct cybersecurity awareness programs for employees
2. Provide training on safe computing practices and data protection
3. Foster a security-conscious culture within the organization

Collaboration and Communication

1. Engage with business units to understand their security needs and project requirements
2. Communicate effectively with stakeholders, including executives and technical teams
3. Foster strong relationships with key stakeholders